Patterns to establish a secure communication channel

Andreas Daniel Sinnhofer; Felix Jonathan Oppermann; Klaus Potzmader; Clemens Orthacker; Christian Steger; Christian Josef Kreiner

doi:10.1145/3011784.3011797

Patterns to establish a secure communication channel

Andreas Daniel Sinnhofer, Felix Jonathan Oppermann, Klaus Potzmader, Clemens Orthacker, Christian Steger, Christian Josef Kreiner

Institute of Technical Informatics (4480)

Research output: Chapter in Book/Report/Conference proceeding › Conference paper › peer-review

Abstract

Nowadays, cyber-physical systems (CPS) are omnipresent in our daily lives and are increasingly used to process confidential data. While the variety of portable devices we use excessively at home and at work is steadily increasing, their security vulnerabilities are often not noticed by the user. Therefore, portable devices such as wearables are becoming more and more interesting for adversaries. Additionally, the increasing functionalities like internet capabilities, cameras, microphones, GPS trackers and other senor devices make them an interesting target for hacking. Furthermore, such CPS devices are often deployed in unsupervised and untrusted environments raising the question about privacy and security to a crucial topic. Thus, a robust and secure software design is required for the implementation of cryptographic communication protocols and encryption algorithms. In our opinion, Software-Patterns have proven to be an efficient way to support the development of such systems. Therefore, we will present patterns for solving the issue of Man-in-the-middle attacks. The presented patterns provide generic guidance on how to establish secure communication channels based on symmetric and / or asymmetric cryptography. Further, a selection graph is presented which helps to find the appropriate pattern in a specific context.

Original language	English
Title of host publication	EuroPLoP '16: Proceedings of the 21th European Conference on Pattern Languages of Programs
Publisher	Association of Computing Machinery
Pages	1–21
ISBN (Electronic)	978-145034074-8
DOIs	https://doi.org/10.1145/3011784.3011797
Publication status	Published - 10 Jul 2016
Event	21st European Conference on Pattern Languages of Programs: EuroPLoP 2016 - Kloster Irsee, Kaufbeuren, Germany Duration: 6 Jul 2016 → 10 Jul 2016

Publication series

Name	ACM International Conference Proceeding Series

Conference

Conference	21st European Conference on Pattern Languages of Programs
Country/Territory	Germany
City	Kaufbeuren
Period	6/07/16 → 10/07/16

Access to Document

10.1145/3011784.3011797

ASIDS - Advanced Secure Identification Systems
Steger, C. (Co-Investigator (CoI)), Oppermann, F. J. (Co-Investigator (CoI)), Kreiner, C. J. (Co-Investigator (CoI)), Krampl, F. (Co-Investigator (CoI)), Maierl, P. (Co-Investigator (CoI)), Sinnhofer, A. D. (Co-Investigator (CoI)) & Hechl, A. (Co-Investigator (CoI))
1/06/14 → 30/11/16
Project: Research project
Industrial Informatics
Macher, G. (Co-Investigator (CoI)), Dobaj, J. (Co-Investigator (CoI)), Krug, T. (Co-Investigator (CoI)), Blažević, R. (Co-Investigator (CoI)) & Veledar, O. (Co-Investigator (CoI))
1/09/12 → 31/12/24
Project: Research area

Cite this

Sinnhofer, A. D., Oppermann, F. J., Potzmader, K., Orthacker, C., Steger, C., & Kreiner, C. J. (2016). Patterns to establish a secure communication channel. In EuroPLoP '16: Proceedings of the 21th European Conference on Pattern Languages of Programs (pp. 1–21). Article 13 (ACM International Conference Proceeding Series). Association of Computing Machinery. https://doi.org/10.1145/3011784.3011797

Patterns to establish a secure communication channel. / Sinnhofer, Andreas Daniel; Oppermann, Felix Jonathan; Potzmader, Klaus et al.
EuroPLoP '16: Proceedings of the 21th European Conference on Pattern Languages of Programs. Association of Computing Machinery, 2016. p. 1–21 13 (ACM International Conference Proceeding Series).

Research output: Chapter in Book/Report/Conference proceeding › Conference paper › peer-review

Sinnhofer, AD, Oppermann, FJ, Potzmader, K, Orthacker, C, Steger, C & Kreiner, CJ 2016, Patterns to establish a secure communication channel. in EuroPLoP '16: Proceedings of the 21th European Conference on Pattern Languages of Programs., 13, ACM International Conference Proceeding Series, Association of Computing Machinery, pp. 1–21, 21st European Conference on Pattern Languages of Programs, Kaufbeuren, Germany, 6/07/16. https://doi.org/10.1145/3011784.3011797

@inproceedings{8043549e1a7d4652a9c082696a1bbf3e,

title = "Patterns to establish a secure communication channel",

abstract = "Nowadays, cyber-physical systems (CPS) are omnipresent in our daily lives and are increasingly used to process confidential data. While the variety of portable devices we use excessively at home and at work is steadily increasing, their security vulnerabilities are often not noticed by the user. Therefore, portable devices such as wearables are becoming more and more interesting for adversaries. Additionally, the increasing functionalities like internet capabilities, cameras, microphones, GPS trackers and other senor devices make them an interesting target for hacking. Furthermore, such CPS devices are often deployed in unsupervised and untrusted environments raising the question about privacy and security to a crucial topic. Thus, a robust and secure software design is required for the implementation of cryptographic communication protocols and encryption algorithms. In our opinion, Software-Patterns have proven to be an efficient way to support the development of such systems. Therefore, we will present patterns for solving the issue of Man-in-the-middle attacks. The presented patterns provide generic guidance on how to establish secure communication channels based on symmetric and / or asymmetric cryptography. Further, a selection graph is presented which helps to find the appropriate pattern in a specific context.",

author = "Sinnhofer, {Andreas Daniel} and Oppermann, {Felix Jonathan} and Klaus Potzmader and Clemens Orthacker and Christian Steger and Kreiner, {Christian Josef}",

year = "2016",

month = jul,

day = "10",

doi = "10.1145/3011784.3011797",

language = "English",

series = "ACM International Conference Proceeding Series",

publisher = "Association of Computing Machinery",

pages = "1–21",

booktitle = "EuroPLoP '16: Proceedings of the 21th European Conference on Pattern Languages of Programs",

address = "United States",

note = "21st European Conference on Pattern Languages of Programs : EuroPLoP 2016 ; Conference date: 06-07-2016 Through 10-07-2016",

}

TY - GEN

T1 - Patterns to establish a secure communication channel

AU - Sinnhofer, Andreas Daniel

AU - Oppermann, Felix Jonathan

AU - Potzmader, Klaus

AU - Orthacker, Clemens

AU - Steger, Christian

AU - Kreiner, Christian Josef

PY - 2016/7/10

Y1 - 2016/7/10

N2 - Nowadays, cyber-physical systems (CPS) are omnipresent in our daily lives and are increasingly used to process confidential data. While the variety of portable devices we use excessively at home and at work is steadily increasing, their security vulnerabilities are often not noticed by the user. Therefore, portable devices such as wearables are becoming more and more interesting for adversaries. Additionally, the increasing functionalities like internet capabilities, cameras, microphones, GPS trackers and other senor devices make them an interesting target for hacking. Furthermore, such CPS devices are often deployed in unsupervised and untrusted environments raising the question about privacy and security to a crucial topic. Thus, a robust and secure software design is required for the implementation of cryptographic communication protocols and encryption algorithms. In our opinion, Software-Patterns have proven to be an efficient way to support the development of such systems. Therefore, we will present patterns for solving the issue of Man-in-the-middle attacks. The presented patterns provide generic guidance on how to establish secure communication channels based on symmetric and / or asymmetric cryptography. Further, a selection graph is presented which helps to find the appropriate pattern in a specific context.

AB - Nowadays, cyber-physical systems (CPS) are omnipresent in our daily lives and are increasingly used to process confidential data. While the variety of portable devices we use excessively at home and at work is steadily increasing, their security vulnerabilities are often not noticed by the user. Therefore, portable devices such as wearables are becoming more and more interesting for adversaries. Additionally, the increasing functionalities like internet capabilities, cameras, microphones, GPS trackers and other senor devices make them an interesting target for hacking. Furthermore, such CPS devices are often deployed in unsupervised and untrusted environments raising the question about privacy and security to a crucial topic. Thus, a robust and secure software design is required for the implementation of cryptographic communication protocols and encryption algorithms. In our opinion, Software-Patterns have proven to be an efficient way to support the development of such systems. Therefore, we will present patterns for solving the issue of Man-in-the-middle attacks. The presented patterns provide generic guidance on how to establish secure communication channels based on symmetric and / or asymmetric cryptography. Further, a selection graph is presented which helps to find the appropriate pattern in a specific context.

U2 - 10.1145/3011784.3011797

DO - 10.1145/3011784.3011797

M3 - Conference paper

T3 - ACM International Conference Proceeding Series

SP - 1

EP - 21

BT - EuroPLoP '16: Proceedings of the 21th European Conference on Pattern Languages of Programs

PB - Association of Computing Machinery

T2 - 21st European Conference on Pattern Languages of Programs

Y2 - 6 July 2016 through 10 July 2016

ER -

Patterns to establish a secure communication channel

Abstract

Publication series

Conference

Access to Document

Fingerprint

Projects

ASIDS - Advanced Secure Identification Systems

Industrial Informatics

Cite this